Short Course

Practical Bug Bounty Hunting for Hackers and Pentesters

Learn to hunt for high-impact vulnerabilities and become a bug hunting pro, mastering bug bounties from recon to report!

6 Hours of video content

Intermediate

Certificate of Completion Included

Check out Subscription Plans

Overview What You Will Learn Curriculum Instructor

Course Overview

500 million personal records of data were stolen in 2018 alone! To mitigate the risks associated with an increasingly dangerous cyber-world companies are implementing Bug Bounty programs, opting for a crowdsourced approach to vulnerability discovery. In 2019 over 43 million dollars were paid over the HackerOne platform alone!

This course “Practical Bug Bounty Hunting for Hackers and Pentesters”, will guide you from finding targets, over developing exploits to writing comprehensive reports and ensuring your success in the Bug Bounty industry.

By the end of this course, with hands-on examples and real-world tricks, you will soon be able to find your first bug.

The necessary resources for this course are in the "Resources" section of Video 1.1. You can also access them through this direct link - https://github.com/ec-council-learning/Practical-Bug-Bounty-Hunting-for-Hackers-and-Pentesters

What You Will Learn

Learn how to find bugs in high target Bug Bounty programs
Develop a methodology to effectively find bugs
Discover about various vulnerability types ranging from web to mobile and IoT systems
Prove your knowledge in hands-on lab exercises
Building clear and understandable bug bounty reports

Program Curriculum

What are Bug Bounty Programs?
Types of Bug Bounty Programs
Legal Foundations for Bug Bounties
$7 Million Cybersecurity Scholarship by EC-Council
Chapter 1 Quiz

Open-source Intelligence
Subdomain Enumeration
Nmap Scans
Burp Suite
Nikto Scans
Chapter 2 Lab
Chapter 2 Quiz

OWASP and CWE
SQL Injection
Cross Site Scripting (XSS)
XML External Entities (XXE)
Insecure Direct Object Reference (IDOR)
Command Injection and RCE
Web Application Exploitation Case Studies
Chapter 3 Lab
Chapter 3 Quiz

Insecure Logging and Storage
Buffer Overflows
Improper Access Control
Use after Free
Integer Overflows and Underflows
Case Studies
Chapter 4 Lab
Chapter 4 Quiz

Decompiling APKs
Introduction to Drozer
Activity Vulnerabilities
Content Provider Vulnerabilities
Broadcast Vulnerabilities
Case Studies
Chapter 5 Lab
Chapter 5 Quiz

Etiquette for Reporting Vulnerabilities
Scoring a Vulnerabilities Severity Using CVSS
How to Write a Good Report?
What Is a CVE?
Chapter 6 Lab
Chapter 6 Quiz

Load more modules

Instructor

Scott Cosentino

Scott Cosentino is a developer and teacher who is passionate about learning. He works primarily in software development and computer security. Aside from this, he has taught students a variety of programming-related topics, and he loves to inspire students to be passionate about the topics that he teaches. He has experience in both large classes and one on one teaching. Scott believes that mathematics and computer science can be approachable and fun topics. he tailors his courses so that they are easy to comprehend, with an exploration of what, why, and how of every topic. He understands that these topics are not a spectator sport, so he provides as many examples and practises problems as possible so that the viewer can follow along and learn!

Buy this course now

$59.99

Get Immediate access for one year today!

Upgrade to Pro Plans and Get Full Access Today!

Get this course, along with 700+ courses and 50+ learning paths and more in one subscription. Learn more

Unlock All Access

Plans start from $33/mo. Cancel anytime.

Join over 1 Million professionals from the most renowned Companies in the world!

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans

Annual Plans

Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

^$ 499.00

Billed annually or $59.00 billed monthly

Get Started Now

Start your 7-day trial for $1

What is included

700+ Premium Short Courses
50+ Structured Learning Paths
Validation of Completion with all courses and learning paths
New Courses added every month

Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

^$ 599.00

Billed annually or $69.00 billed monthly

Get Started Now

Start your 7-day trial for $1

Everything in Pro and

800+ Practice Lab exercises with guided instructions
150+ CTF Challenges with detailed walkthroughs
New Practice Labs and Challenges added every month
3 Official EC-Council Essentials Certifications¹ (retails at $897!)
Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

15 Must Have Tools for Pentesters

Short Course

15 Must Have Tools for Pentesters

Vulnerability Assessment and Pentesting

Upgrade your penetration testing skillset by adopting the best tools available in the market!

Upgrade your penetration testing skillset by adopting the bes...

$59.99

Intermediate

9 hr 15 m

Hello
Kali for Penetration Testers

Short Course

Kali for Penetration Testers

Vulnerability Assessment and Pentesting

Ethical Hacking with Kali Linux

Ethical Hacking with Kali Linux

$69.99

Beginner

6 hr 49 m

Hello
Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

Short Course

Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

Vulnerability Assessment and Pentesting

The comprehensive course to secure & crack WEP/WPA/WPA2 key and perform MITM attack from scratch using Kali Linux 2.0.

The comprehensive course to secure & crack WEP/WPA/WPA2 k...

$69.99

Intermediate

5 hr 12 m

Hello
Getting Started with Bug Bounty Hunting

Short Course

Getting Started with Bug Bounty Hunting

Vulnerability Assessment and Pentesting

Perfect Guide for Making You a Noob to Pro Bug Hunter

Perfect Guide for Making You a Noob to Pro Bug Hunter

$79.99

Beginner

2 hr 45 m

Hello
Web Hacker’s Toolbox: Tools Used by Successful Hackers

Short Course

Web Hacker’s Toolbox: Tools Used by Successful Hackers

Vulnerability Assessment and Pentesting

Discover the Tools Used by Successful Hackers and Learn How to Use Them in Your Own Penetration Testing Projects

Discover the Tools Used by Successful Hackers and Learn How t...

$59.99

Intermediate

3 hr 4 m

Hello
Full-Stack Attacks on Modern Web Applications

Short Course

Full-Stack Attacks on Modern Web Applications

Vulnerability Assessment and Pentesting

Learn About HTTP Parameter Pollution, Subdomain Takeover, and Clickjacking

Learn About HTTP Parameter Pollution, Subdomain Takeover, and...

$59.99

Intermediate

0 hr 59 m

Hello
Learn Hacking Using Raspberry Pi from Scratch

Short Course

Learn Hacking Using Raspberry Pi from Scratch

Vulnerability Assessment and Pentesting

Improve your Ethical Hacking Skills by using your portable Raspberry Pi device for Penetration Testing/Security Auditing.

Improve your Ethical Hacking Skills by using your portable Ra...

$69.99

Beginner

8 hr 20 m

Hello
Digital Forensics for Pentesters - Hands-on Learning

Short Course

Digital Forensics for Pentesters - Hands-on Learning

Vulnerability Assessment and Pentesting

Detect and backtrack cyber criminals and hackers with digital forensics.

Detect and backtrack cyber criminals and hackers with digital...

$69.99

Beginner

5 hr 10 m

Hello